Application Deadline:
12/30/2024
Address:
100 King Street West
Job Family Group:
Technology
Position Overview
As a Cyber Security Incident Management Analyst, you will play a crucial role in supporting Bank of Montreal’s efforts to identify, manage, and resolve cyber security incidents. Your primary responsibilities will include ensuring the quality and accuracy of incident documentation, collaborating with cross-functional teams, conducting root cause analysis, and assisting in the continuous improvement of cyber security incident management processes.
You will work under the guidance of Incident Managers and other cyber security leaders to develop your skills in cyber security incident response, process optimization, and problem management. This role will help the bank to facilitate and manage potential or real attacks/breaches and provide operational support utilizing existing escalation procedures. As part of the Financial Crimes Unit (FCU) and the combined cyber, fraud, physical security, and crisis management teams, you will help strengthen our security capabilities to protect bank and customer data across these domains. This is an exciting opportunity for someone looking to start their career in cyber security in a large enterprise with an emphasis on improving quality and operational effectiveness.
Key Responsibilities
Incident Management Support
-
Assist in the triage and classification of cyber security incidents as they are reported.
-
Help monitor incident timelines to ensure compliance with response and resolution objectives which may require on-call support during major incidents or security events.
-
Support the documentation of incidents, ensuring details are accurate, complete, and in accordance with incident management protocols.
Quality Assurance & Compliance
-
Perform quality checks on incident records and documentation, ensuring consistency and adherence to internal standards and regulatory requirements.
-
Validate that incident handling procedures are followed correctly, and raise flags for any deviations or improvements needed.
-
Assist with auditing incident reports, identifying gaps or areas for process improvements.
Problem Management & Process Improvement
-
Analyze recurring incidents to identify causes, suggest solutions, and support root cause analysis and post-mortem documentation.
-
Collaborate with teams to enhance incident response processes and develop playbooks, guidelines, and SOPs.
-
Track problem management activities, implement corrective actions, and improve incident handling effectiveness.
Reporting & Metrics
-
Assist in the creation of incident reports and dashboards to track performance, trends, and metrics associated with incidents and problem management.
-
Provide data-driven insights to leadership for continuous improvement initiatives.
Collaboration & Communication
-
Work with IT, Security Operations, Crisis Management, and other relevant departments to ensure seamless communication and coordination during incidents.
-
Assist with incident response meetings, ensure the right stakeholders are involved, and that action items are tracked and completed in a timely manner.
Qualifications
Experience and Skills
-
Typically, between 1-3 years of experience in cyber security, IT operations, or a related field. Internship or academic projects in cyber security or incident response are a plus.
-
Bachelor’s degree in Information Security, Computer Science, IT, or a related field, or equivalent work experience.
-
Information Security certifications from a well-recognized institution (e.g. (ISC)2, ISACA, SANS).
-
Basic understanding of cyber security principles, incident management, and problem management frameworks (e.g., ITIL).
-
Familiarity with common incident management tools and platforms such as ServiceNow, Jira, or similar.
-
Understanding and problem-solving ability of Information Security issues across the bank and a knowledge of defense in depth and zero trust models.
-
Strong attention to detail and commitment to accuracy, particularly when documenting incidents.
-
Analytical thinking with the ability to identify patterns and root causes in incidents.
-
Excellent verbal and written communication skills, with the ability to communicate clearly and professionally with various technical and non-technical audiences.
-
Ability to work independently and as part of a team in a fast-paced, high-pressure environment.
Desired Skills (Not Required but a Plus)
-
Certification such as CompTIA Security+, CompTIA CySA+, GCIH, or ITIL Foundation is advantageous.
-
Familiarity with EDR technologies such as CrowdStrike, Defender for Enterprise, or Carbon Black.
-
Experience working on SIEM tools such as Splunk, Sentinel, or QRadar.
-
Knowledge of cloud security, network security, and endpoint security.
Salary:
Pay Type:
Salaried
The above represents BMO Financial Group’s pay range and type.
Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group’s expected target for the first year in this position.
BMO Financial Group’s total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards
We’re here to help
At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.
As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.
To find out more visit us at https://jobs.bmo.com/ca/en.
BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.
Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.
Bank of Montreal Toronto, Ontario, CAN Office
First Canadian Place, 100 King Street, Toronto, Ontario, Canada, M5X 1A1